Exam Terraform Associate topic 1 question 70 discussion

The safest method to inject sensitive variables into your Terraform run in a CI/CD pipeline is: A. Pass variables to Terraform with a -var flag. When running Terraform in your CI/CD pipeline, you would pass the sensitive variables like this: terraform apply -var="database_password=mysecretpassword" -var="api_key=1234567890abcdef" For enhanced security, in a CI/CD environment, you'd typically use environment variables or secret management tools that are supported by your CI/CD platform to pass these sensitive values, so they are never exposed in logs or stored in insecure locations. For instance, using environment variables: export TF_VAR_database_password=mysecretpassword export TF_VAR_api_key=1234567890abcdef terraform apply

Definitely A.

A is Correct for passing sensitive vars to CI/CD

The safest option among the choices provided is to use the -var flag to pass sensitive variables to Terraform. This allows you to provide variable values at runtime without hardcoding them directly into the Terraform code or exposing them in the source code repository.

https://developer.hashicorp.com/terraform/language/values/variables

I see that is A but since its on B. Will it be B on the exam? Or that option, even though everyone is on A. Just curious.

Obviously A

A. Pass variables to Terraform with a "var" flag. When running Terraform in a CI/CD pipeline, it is important to securely pass sensitive variables to Terraform. One way to pass sensitive variables to Terraform is to use the -var flag to supply the value of the variable at runtime.

A is correct

A is a correct answer Reference: https://developer.hashicorp.com/terraform/language/values/variables

https://developer.hashicorp.com/terraform/language/values/variables

A is correct

A for sure

A= correct Var

A is correct answer : -var See Topic 1 # Question 43 https://blog.gruntwork.io/a-comprehensive-guide-to-managing-secrets-in-your-terraform-code-1d586955ace1

A is the answer

I vote A